MSRC Reports
@msrcreports
61 subscribers
2.99K links
Microsoft Security Response Center Reports
(Unofficial).

Reports usually come in bursts, because that's just how Microsoft releases them.
Download Telegram
About
Blog
Apps
Platform
Join
MSRC Reports
61 subscribers
MSRC Reports
CVE-2025-38615 fs/ntfs3: cancle set bad inode after removing name fails

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-38615
14 views
MSRC Reports
CVE-2025-38643 wifi: cfg80211: Add missing lock in cfg80211_check_and_end_cac()

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-38643
13 views
MSRC Reports
CVE-2025-38626 f2fs: fix to trigger foreground gc during f2fs_map_blocks() in lfs mode

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-38626
11 views
MSRC Reports
CVE-2025-38659 gfs2: No more self recovery

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-38659
11 views
MSRC Reports
CVE-2025-12638 Path Traversal Vulnerability in keras-team/keras via Tar Archive Extraction in keras.utils.get_file()

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-12638
11 views
MSRC Reports
CVE-2025-66221 Werkzeug safe_join() allows Windows special device names

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-66221
11 views
MSRC Reports
CVE-2025-64506 LIBPNG is vulnerable to a heap buffer over-read in `png_write_image_8bit` with grayscale+alpha or RGB/RGBA images

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64506
15 views
MSRC Reports
CVE-2025-64505 LIBPNG is vulnerable to a heap buffer overflow in `png_do_quantize` via malformed palette index

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-64505
16 views
MSRC Reports
CVE-2025-12889 TLS 1.2 Client Can Downgrade Digest Used

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-12889
16 views
MSRC Reports
CVE-2025-11936 Potential DoS Vulnerability through Multiple KeyShareEntry with Same Group in TLS 1.3 ClientHello

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-11936
17 views
MSRC Reports
CVE-2025-61915 OpenPrinting CUPS vulnerable to stack based out-of-bound write

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-61915
19 views
MSRC Reports
CVE-2025-58436 OpenPrinting CUPS slow client can halt cupsd, leading to a possible DoS attack

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-58436
21 views
MSRC Reports
CVE-2025-11932 Timing Side-Channel in PSK Binder Verification

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-11932
23 views
MSRC Reports
CVE-2025-11931 Integer Underflow Leads to Out-of-Bounds Access in XChaCha20-Poly1305 Decrypt

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-11931
20 views
MSRC Reports
CVE-2025-12888 Constant Time Issue with Xtensa-based ESP32 and X22519

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-12888
21 views
MSRC Reports
CVE-2023-53292 blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-53292
20 views
MSRC Reports
CVE-2023-53261 coresight: Fix memory leak in acpi_buffer->pointer

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-53261
21 views
MSRC Reports
CVE-2025-39810 bnxt_en: Fix memory corruption when FW resources change during ifdown

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-39810
18 views
MSRC Reports
CVE-2022-50266 kprobes: Fix check for probe enabled in kill_kprobe()

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-50266
19 views
MSRC Reports
CVE-2025-39829 trace/fgraph: Fix the warning caused by missing unregister notifier

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-39829
19 views
MSRC Reports
CVE-2025-66031 node-forge ASN.1 Unbounded Recursion

Information published.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-66031
20 views